From owner-freebsd-hackers  Mon Dec 10  0: 0: 0 2001
Delivered-To: freebsd-hackers@freebsd.org
Received: from neptune.deep-ocean.net (APastourelles-102-1-2-228.abo.wanadoo.fr [217.128.208.228])
	by hub.freebsd.org (Postfix) with ESMTP id 38A4237B405
	for <freebsd-hackers@freebsd.org>; Sun,  9 Dec 2001 23:59:50 -0800 (PST)
Received: by neptune.deep-ocean.net (Postfix, from userid 1000)
	id 4FF2D5EF04; Mon, 10 Dec 2001 08:59:48 +0100 (CET)
Date: Mon, 10 Dec 2001 08:59:48 +0100
From: Olivier Cortes <olive@deep-ocean.org>
To: Mike D <d01f1n@yahoo.com>
Cc: freebsd-hackers@freebsd.org
Subject: Re: natd ignores "natd_flags"?
Message-ID: <20011210085948.B22592@neptune.deep-ocean.local>
Mail-Followup-To: Olivier Cortes <olive@deep-ocean.org>,
	Mike D <d01f1n@yahoo.com>, freebsd-hackers@freebsd.org
References: <20011210075001.JESP3849.mta06-svc.ntlworld.com@there>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20011210075001.JESP3849.mta06-svc.ntlworld.com@there>; from d01f1n@yahoo.com on Mon, Dec 10, 2001 at 07:49:37AM +0000
X-Operating-System: FreeBSD 4.4-STABLE i386 up  9:26, 1 user, load averages: 0.00, 0.04, 0.05
Organization: Deep-Ocean Network
X-URL: http://www.deep-ocean.org/
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG

Hi,

[I think this question should be redirected to -questions or -net, but
anyway...]

do you have IPFIREWALL in your kernel ? is is configured "default to
deny" ? This is typically what is bugginig me when natd fails to write a
packet : a nasty firewall rule...

man ipfw & read the handbook, section networking (correct me if i'm
wrong).

Olivier

On Mon, Dec 10, 2001 at 07:49:37AM +0000, Mike D wrote:
> I have in my rc.conf:
> 
> natd_enable="YES"
> natd_interface="xl1"
> natd_flags="-f /etc/natd.conf"
> 
> and in /etc/natd.conf:
> 
> interface xl1
> dynamic yes
> use_sockets yes
> same_ports yes
> log_denied yes
> 
> however, since I am still seeing the "host4 natd[198]: failed to write packet 
> back (Permission denied)" messages, I'm guessing "log_denied" is not being 
> picked up.
> 
> Any help appreciated.
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-hackers" in the body of the message

--
Olivier Cortes

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message